'/%3e%3cpath%20d='M50.3943%2022.237V39.5876H43.5185V22.7481C43.5185%2019.2029%2042.0411%2017.3949%2039.036%2017.3949C35.7325%2017.3949%2034.0778%2019.5338%2034.0778%2023.7585V32.9759H27.2434V23.7585C27.2434%2019.5338%2025.5857%2017.3949%2022.2822%2017.3949C19.2949%2017.3949%2017.8027%2019.2029%2017.8027%2022.7481V39.5876H10.9298V22.237C10.9298%2018.6918%2011.835%2015.8754%2013.6453%2013.7877C15.5128%2011.7049%2017.9623%2010.6355%2021.0028%2010.6355C24.522%2010.6355%2027.1813%2011.9885%2028.9542%2014.6917L30.665%2017.5633L32.3788%2014.6917C34.1517%2011.9885%2036.811%2010.6355%2040.3243%2010.6355C43.3619%2010.6355%2045.8114%2011.7049%2047.6847%2013.7877C49.4931%2015.8734%2050.3963%2018.6899%2050.3943%2022.237Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_89_8'%20x1='30.5'%20y1='0'%20x2='30.5'%20y2='65'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%236364FF'/%3e%3cstop%20offset='1'%20stop-color='%23563ACC'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e)
BjoernAusGE<p>Ich kümmer mich ja in meiner Freizeit um die Technik hinter Kodinerds.net und habe die letzten zwei Tage mal einen kleinen Versuch gemacht wieviel Last KI Scraper auf unseren Systemen verursachen. Unser Forum ist jetzt nicht so groß und erzeugt keine ungeheure Last.<br><br>Also einfach mal eben schnell <a href="https://social.sengotta.net/tags/beszel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Beszel</span></a> auf den Server geworfen (danke noch mal für den Tipp dazu aus dem Fediverse) und ab Montag 12 Uhr aufzeichnen.<br><br>Zu diesem Zeitpunkt hatte ich noch eine einfach Filterung drin. Nginx filtert alle "gutmütigen" Crawler weg die sich über Ihren Useragent erkennen lassen.<br><br>Dienstag 12 Uhr habe ich diesen Schutz abgeschaltet.<br>Man kann recht deutlich sehen das dies dazu führt das zwischen 20-22 Uhr doppelt soviel CPU Last erzeugt und Bandbreite genutzt wurde.<br><br>Die Anzahl der Besucher und View (mit Umami erfasst) sind fast identischl<br><br>Das ist noch weit vom DDoS entfernt, aber das populärere Projekte damit Probleme habe kann ich gut nachvollziehen.<br>Mal schauen ob ich Anubis davorschalte, nicht weil es nötig wäre sondern um diesen KI Buden den Spass zu verderben.<br><a href="https://social.sengotta.net/tags/ki" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ki</span></a> <a href="https://social.sengotta.net/tags/ai" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ai</span></a> <a href="https://social.sengotta.net/tags/ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ddosia</span></a> <a href="https://social.sengotta.net/tags/selfhosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosting</span></a> <a href="https://social.sengotta.net/tags/kodi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>kodi</span></a> <a href="https://social.sengotta.net/tags/kodinerds" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>kodinerds</span></a> <a href="https://social.sengotta.net/tags/kodinerd" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>kodinerd</span></a><br></p>
101010.pl is one of the many independent Mastodon servers you can use to participate in the fediverse.
101010.pl czyli najstarszy polski serwer Mastodon. Posiadamy wpisy do 2048 znaków.
Administered by:
Server stats:
500active users
101010.pl: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.0-alpha.5
#ddosia
0 posts · 0 participants · 0 posts today
A bot witha.name<p>New configuration detected for DDosia. Hosts:<br>* www.bmi.bund.de<br>* www.balm.bund.de<br>* mdm01.grob-aircraft.com<br>* alurheinfelden.com<br>* www.bmj.de<br>* clientnext.bayernlb.de<br>* grob-aircraft.com<br>* sbahn.berlin<br>* api.sbahn.berlin<br>* www.nrwbank.de<br>* www.elbeflugzeugwerke.com<br>* rheinfelden-semis.eu<br>* www.baywa.com<br>* rheinfelden-carbon.eu<br>* www.cobus-industries.com<br>* www.man-es.com<br>* www.bayernlb.de <a href="https://social.circl.lu/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntel</span></a> <a href="https://social.circl.lu/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> <a href="https://social.circl.lu/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a><br>* <a href="https://witha.name/data/2025-01-14_07-10-02_DDoSia-target-list-full.json" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2025-01-14_07-</span><span class="invisible">10-02_DDoSia-target-list-full.json</span></a><br>*</p>
Max Resing<p>Looks like <a href="https://infosec.exchange/tags/NoName057" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName057</span></a> went after Israeli websites. Was it the first time? Any clues what could have provoked it?</p><p><a href="https://infosec.exchange/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DDoS</span></a> <a href="https://infosec.exchange/tags/DDoSia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DDoSia</span></a> <a href="https://infosec.exchange/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a> <a href="https://infosec.exchange/tags/Russia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Russia</span></a> <a href="https://infosec.exchange/tags/Israel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Israel</span></a></p>
A bot witha.name<p>clientnext.bayernlb.de<br>* fnherstal.com<br>* grob-aircraft.com<br>* api.sbahn.berlin<br>* www.baywa.com<br>* www.vanhool.com<br>* www.televic.com<br>* www.bmj.de<br>* 1557.kyiv.ua<br>* www.dexia.com<br>* www.migremont.zp.ua<br>* narp.ua<br>* www.minfin.fgov.be<br>* idp.belgiantrain.be<br>* www.man-es.com<br>* www.nrwbank.de <a href="https://social.circl.lu/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntel</span></a> <a href="https://social.circl.lu/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> <a href="https://social.circl.lu/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a><br>* <a href="https://witha.name/data/2024-12-20_12-10-25_DDoSia-target-list-full.json" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-12-20_12-</span><span class="invisible">10-25_DDoSia-target-list-full.json</span></a><br>* <a href="https://witha.name/data/2024-12-20_12-10-25_DDoSia-target-list.csv" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-12-20_12-</span><span class="invisible">10-25_DDoSia-target-list.csv</span></a></p>
A bot witha.name<p>New IP set detected for DDosia.</p><p><a href="https://social.circl.lu/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntel</span></a> <a href="https://social.circl.lu/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> <a href="https://social.circl.lu/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a></p>
Martin S 🚩❤️✊ 🇵🇸🇺🇦<p>Did witha.name start charging for their <a href="https://infosec.exchange/tags/noname" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>noname</span></a> tracking or just hardened with login and password? The <a href="https://infosec.exchange/tags/noname" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>noname</span></a> <a href="https://infosec.exchange/tags/ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ddosia</span></a> bot stopped working as well.</p>
Koen Van Impe<p>I created a small script to extract unique hostnames and domains from the DDoSia configuration objects shared via <span class="h-card" translate="no"><a href="https://misp-community.org/@misp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>misp</span></a></span> . Post at <a href="https://www.vanimpe.eu/2024/10/08/extract-hostnames-and-domains-from-ddosia-misp-object/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">vanimpe.eu/2024/10/08/extract-</span><span class="invisible">hostnames-and-domains-from-ddosia-misp-object/</span></a> ; Script: <a href="https://github.com/cudeso/tools/blob/master/ddosia-extract/parse_ddosia.py" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/cudeso/tools/blob/m</span><span class="invisible">aster/ddosia-extract/parse_ddosia.py</span></a> <a href="https://infosec.exchange/tags/DDOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DDOS</span></a> <a href="https://infosec.exchange/tags/DDOSIA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DDOSIA</span></a></p>
The Cybersecurity Librarian :donor:<p>TELUS and Cogeco are listed as <a href="https://infosec.exchange/tags/DDoSia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DDoSia</span></a> targets today. Given this follows a NATO announcement by Canada yesterday, will we see other Canadian targets (who are rarely seen on these Russia-sponsored DoS targets?</p>
A bot witha.name<p>New configuration detected for DDosia. Hosts:<br>* metro.kyiv.ua<br>* agrisupp.com<br>* www.ztr.ua<br>* ukragroconsult.com<br>* academy.ssu.gov.ua <a href="https://social.circl.lu/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntel</span></a> <a href="https://social.circl.lu/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> <a href="https://social.circl.lu/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a><br>* <a href="https://witha.name/data/2024-04-01_08-20-03_DDoSia-target-list-full.json" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-04-01_08-</span><span class="invisible">20-03_DDoSia-target-list-full.json</span></a><br>* <a href="https://witha.name/data/2024-04-01_08-20-03_DDoSia-target-list.csv" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-04-01_08-</span><span class="invisible">20-03_DDoSia-target-list.csv</span></a></p>
Taxsec🔹<p>The <a href="https://mastodon.social/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> Bot <a href="https://mastodon.social/tags/Noname" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Noname</span></a> does not catch the .lu (etc.) victims from this group <a href="https://t.me/s/CyberArmyofRussia_Reborn/7037" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">t.me/s/CyberArmyofRussia_Rebor</span><span class="invisible">n/7037</span></a> cc <span class="h-card" translate="no"><a href="https://cyberplace.social/@GossiTheDog" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>GossiTheDog</span></a></span></p>
A bot witha.name<p>New configuration detected for DDosia. Hosts:<br>* www.piraeusbank.gr<br>* www.eurobank.gr<br>* ebanking.eurobank.gr<br>* secure.alpha.gr<br>* ose.gr<br>* www.alpha.gr<br>* ktelthes.gr <a href="https://social.circl.lu/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntel</span></a> <a href="https://social.circl.lu/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> <a href="https://social.circl.lu/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a><br>* <a href="https://witha.name/data/2024-03-21_07-10-03_DDoSia-target-list-full.json" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-03-21_07-</span><span class="invisible">10-03_DDoSia-target-list-full.json</span></a><br>* <a href="https://witha.name/data/2024-03-21_07-10-03_DDoSia-target-list.csv" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-03-21_07-</span><span class="invisible">10-03_DDoSia-target-list.csv</span></a></p>
A bot witha.name<p>New configuration detected for DDosia. Hosts:<br>* www.its-knihovna.cz<br>* www.imy.se<br>* www.skatteverket.se<br>* besip.cz<br>* www.czechtoll.cz<br>* auth.kpi.its-knihovna.cz<br>* www.susjk.cz<br>* pjpk.rsd.cz<br>* www.riksgalden.se<br>* www.mdcr.cz<br>* www.konkurrensverket.se <a href="https://social.circl.lu/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntel</span></a> <a href="https://social.circl.lu/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> <a href="https://social.circl.lu/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a><br>* <a href="https://witha.name/data/2024-03-06_08-15-05_DDoSia-target-list-full.json" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-03-06_08-</span><span class="invisible">15-05_DDoSia-target-list-full.json</span></a><br>* <a href="https://witha.name/data/2024-03-06_08-15-05_DDoSia-target-list.csv" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-03-06_08-</span><span class="invisible">15-05_DDoSia-target-list.csv</span></a></p>
A bot witha.name<p>New configuration detected for DDosia. Hosts:<br>* www.nodeus.se<br>* obywatel.gov.pl<br>* czdalnice.cz<br>* checkbiz.se<br>* autostrady.mpay.pl<br>* www.imy.se<br>* www.riksgalden.se<br>* www.cdv.cz<br>* www.sfdi.cz<br>* www.cspsd.cz<br>* whm.czdalnice.cz<br>* www.rsd.cz<br>* www.skatteverket.se<br>* www.konkurrensverket.se<br>* catalog.forsakringskassan.se<br>* www.regeringen.se<br>* www.tsk-praha.cz<br>* mytocz.eu <a href="https://social.circl.lu/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntel</span></a> <a href="https://social.circl.lu/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> <a href="https://social.circl.lu/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a><br>* <a href="https://witha.name/data/2024-03-05_13-05-03_DDoSia-target-list-full.json" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-03-05_13-</span><span class="invisible">05-03_DDoSia-target-list-full.json</span></a><br>*</p>
A bot witha.name<p><a href="https://social.circl.lu/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> <a href="https://social.circl.lu/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a><br>* <a href="https://witha.name/data/2024-02-23_10-50-05_DDoSia-target-list-full.json" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-02-23_10-</span><span class="invisible">50-05_DDoSia-target-list-full.json</span></a><br>* <a href="https://witha.name/data/2024-02-23_10-50-05_DDoSia-target-list.csv" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-02-23_10-</span><span class="invisible">50-05_DDoSia-target-list.csv</span></a></p>
Kevin Beaumont<p>New <a href="https://cyberplace.social/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a> <a href="https://cyberplace.social/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> client file hashes and C2:</p><p><a href="https://gist.github.com/GossiTheDog/82319e4ee354c4376c092798e7b8e94c" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gist.github.com/GossiTheDog/82</span><span class="invisible">319e4ee354c4376c092798e7b8e94c</span></a></p>
Kevin Beaumont<p>New <a href="https://cyberplace.social/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a> <a href="https://cyberplace.social/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> client file hashes and C2:</p><p><a href="https://gist.github.com/GossiTheDog/dd1cd434b55f0a7d974aad3bd73a564a" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gist.github.com/GossiTheDog/dd</span><span class="invisible">1cd434b55f0a7d974aad3bd73a564a</span></a></p>
Kevin Beaumont<p>New <a href="https://cyberplace.social/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a> <a href="https://cyberplace.social/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> client file hashes and C2:</p><p><a href="https://gist.github.com/GossiTheDog/27cdcf1412ea028f30e0d96565ca8959" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gist.github.com/GossiTheDog/27</span><span class="invisible">cdcf1412ea028f30e0d96565ca8959</span></a></p>
Kevin Beaumont<p>New <a href="https://cyberplace.social/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a> <a href="https://cyberplace.social/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> client file hashes and C2:</p><p><a href="https://gist.github.com/GossiTheDog/8a25337bd994ded7096445c57efdd868" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gist.github.com/GossiTheDog/8a</span><span class="invisible">25337bd994ded7096445c57efdd868</span></a></p>
A bot witha.name<p>New configuration detected for DDosia. Hosts:<br>* www.sienamobilita.it<br>* www.trentinotrasporti.it<br>* group.intesasanpaolo.com<br>* www.amat.pa.it<br>* intra.anm.it<br>* www.giorgiameloni.it<br>* amat.cloud.eleagol.it<br>* www.ctmcagliari.it<br>* www.amt.genova.it<br>* www.sinfomar.it<br>* www.gtt.to.it<br>* www.atb.bergamo.it <a href="https://social.circl.lu/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatIntel</span></a> <a href="https://social.circl.lu/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> <a href="https://social.circl.lu/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a><br>* <a href="https://witha.name/data/2024-02-13_06-10-50_DDoSia-target-list-full.json" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-02-13_06-</span><span class="invisible">10-50_DDoSia-target-list-full.json</span></a><br>* <a href="https://witha.name/data/2024-02-13_06-10-50_DDoSia-target-list.csv" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">witha.name/data/2024-02-13_06-</span><span class="invisible">10-50_DDoSia-target-list.csv</span></a></p>
Kevin Beaumont<p>New <a href="https://cyberplace.social/tags/NoName" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName</span></a> <a href="https://cyberplace.social/tags/Ddosia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ddosia</span></a> client file hashes and C2:</p><p><a href="https://gist.github.com/GossiTheDog/830760f71dd3f2d410f07662d2c4be8f" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gist.github.com/GossiTheDog/83</span><span class="invisible">0760f71dd3f2d410f07662d2c4be8f</span></a></p><p><a href="https://cyberplace.social/tags/threatintel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>threatintel</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload